$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: Qu81qalLhN4Eg7JMqZyMIcpH2r9JRh8Z1q9Yk0AR/d4= Subject key identifier: 01:2C:A7:D3:C2:2A:09:8E:6E:39:A4:BD:4B:35:6C:C7:6D:B0:AA:31 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3637 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 3581 Signing time: Sun 20 Jul 2025 14:17:54 +0000 Manifest this update: Sun 20 Jul 2025 14:17:53 +0000 Manifest next update: Sun 27 Jul 2025 14:17:53 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: rXd5d364+YE+y67510fZivw8i8sq1P+mkQd+b9JFIrs=) 2: 119B023E80A111EFAC559545C4F9AE02.roa (hash: 9LqedBh/T1Pn2Gl1dZnlyMno6hLUqevpcEI4W+No+WM=) 3: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: YwwNNBiRN8WbU6nMfOYGjf/BEh8X+MeiEpmtw+179nA=) 4: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: vGmHulSbJNNSRKDRkCSlexuZ8gppAxWgoNUfgpqDDQo=) 5: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: zMFCeCXoKrPrwTq+A2LXxPGmSZJf7zHnpagMrcSo0Pw=) 6: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: 8Dc8gjY40rl5/6Sh0h3/EDNd7vs6rm1lJULYeNiLj34=) 7: 88978730772311EBB972032EC4F9AE02.roa (hash: 9XGtZh3U+oKF1G7lH8KZbGLBHCLusn+PwSpTkwD9Utg=) 8: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: ONbBKi5oc2lvv+jkklAdH08GL4vyG52+/DptD9K/oRU=) 9: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: TSVCxvcc+Sayf1kDVk4KAdOPfT663XPtMJq+qgnVb4Y=) 10: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: GzXfr4YWUVHSzpZQvdoC1TFhpGmAGgBOPMRMQ/ex3H4=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: ls3D3B0qMoaDuK9w5uGgZ5eY+SJvp9CyLR4mx4nye6A=) 12: 89A73D46772311EBB972032EC4F9AE02.roa (hash: r21OVByQYNcBYjJc0J53OAidjOhKnEhsIuFLOBFbEzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13879 (0x3637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jul 20 14:17:53 2025 GMT Not After : Jul 27 14:17:53 2025 GMT Subject: CN=687cfa91-e2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e4:1e:6c:88:ef:1a:e4:56:21:dd:b1:50:bb: e9:58:fc:2f:b7:82:31:d6:71:ab:14:cc:10:17:52: 09:84:ef:c6:10:c0:4c:f7:42:2f:4a:2a:6e:b4:be: 1f:4f:c9:0d:15:e0:d1:e3:aa:bb:d2:55:d6:5e:db: 0f:3d:44:fd:85:80:c5:dd:f0:98:36:9f:9c:03:9c: 48:eb:72:a1:bf:be:da:a8:be:0a:0d:18:9a:38:8e: 37:8b:a4:4a:68:f7:d3:9f:f7:c8:05:1d:11:d3:1d: 7d:9b:01:37:9f:11:02:ec:2e:6c:7e:be:b3:57:45: 4b:46:01:40:2a:9e:48:bb:37:ae:ce:a2:96:37:83: e1:a5:1c:82:43:6b:e5:63:d0:83:a3:e0:c7:fc:7d: 1d:1b:af:9a:40:e0:e0:51:8d:0e:80:be:05:ab:86: 3a:12:61:27:a6:a5:1d:9b:af:08:ef:d9:22:13:2c: 9a:85:61:37:5f:a2:b4:3e:15:dd:5e:c6:0a:cf:c7: a0:0d:d2:d0:b1:4a:cd:cd:05:eb:71:4b:97:a8:14: 5a:c8:0b:0f:19:7e:ed:34:a8:19:57:e3:79:aa:f8: 8b:31:72:df:3c:fd:61:2d:a2:86:15:a9:4f:9d:71: 8b:29:89:f9:c8:1c:53:6c:f8:53:c9:de:ae:88:d3: d0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:2C:A7:D3:C2:2A:09:8E:6E:39:A4:BD:4B:35:6C:C7:6D:B0:AA:31 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:00:61:6d:2f:32:6d:0a:af:be:a7:25:ae:3b:4b:6b:f9:d3: 78:47:e4:0b:9c:de:ce:51:5b:a9:3c:85:33:0c:45:98:63:7d: e0:95:44:3b:21:61:c3:7a:94:6b:a3:6b:58:9c:5c:2d:ac:0f: a5:3a:55:24:10:65:ec:7e:4e:2d:b3:3e:c7:15:04:17:78:60: 01:72:92:c7:14:90:76:a5:6e:b7:20:23:df:e0:fd:94:2c:03: 34:2a:6e:cd:fc:70:10:41:95:39:46:3f:e1:dc:e2:97:6a:91: b5:49:c6:ce:cf:20:b0:7c:2d:f6:14:f3:a3:7e:e7:90:e9:40: d0:18:ca:e9:a5:a1:d9:bb:a2:bd:f7:2c:6b:19:8b:5c:70:2f: 45:e8:1c:85:b1:a0:5c:de:0b:3b:bb:15:ba:87:e8:95:a7:cc: 4c:9d:10:08:dd:8a:00:9c:87:30:e3:85:c6:26:ba:c9:7e:f1: 3c:75:50:90:f8:28:eb:e1:d9:f9:03:96:01:1d:a6:af:c4:5c: ee:08:b9:7b:c8:ce:cd:96:84:ef:d6:83:20:17:9f:2f:69:74: e0:c0:5d:f7:12:3b:39:85:a8:da:28:4c:d8:1e:ab:3d:30:fe: be:73:38:19:6d:54:52:34:9f:ca:cb:69:bf:59:bd:70:5c:4b: 0c:5a:3a:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNzIwMTQxNzUzWhcNMjUwNzI3MTQxNzUzWjAYMRYwFAYD VQQDEw02ODdjZmE5MS1lMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OQebIjvGuRWId2xULvpWPwvt4Ix1nGrFMwQF1IJhO/GEMBM90IvSiputL4f T8kNFeDR46q70lXWXtsPPUT9hYDF3fCYNp+cA5xI63Khv77aqL4KDRiaOI43i6RK aPfTn/fIBR0R0x19mwE3nxEC7C5sfr6zV0VLRgFAKp5IuzeuzqKWN4PhpRyCQ2vl Y9CDo+DH/H0dG6+aQODgUY0OgL4Fq4Y6EmEnpqUdm68I79kiEyyahWE3X6K0PhXd XsYKz8egDdLQsUrNzQXrcUuXqBRayAsPGX7tNKgZV+N5qviLMXLfPP1hLaKGFalP nXGLKYn5yBxTbPhTyd6uiNPQdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEsp9PC KgmObjmkvUs1bMdtsKoxMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaAGFtLzJtCq++pyWuO0tr+dN4R+QLnN7OUVupPIUzDEWYY33glUQ7 IWHDepRro2tYnFwtrA+lOlUkEGXsfk4tsz7HFQQXeGABcpLHFJB2pW63ICPf4P2U LAM0Km7N/HAQQZU5Rj/h3OKXapG1ScbOzyCwfC32FPOjfueQ6UDQGMrppaHZu6K9 9yxrGYtccC9F6ByFsaBc3gs7uxW6h+iVp8xMnRAI3YoAnIcw44XGJrrJfvE8dVCQ +Cjr4dn5A5YBHaavxFzuCLl7yM7NloTv1oMgF58vaXTgwF33Ejs5hajaKEzYHqs9 MP6+czgZbVRSNJ/Ky2m/Wb1wXEsMWjra -----END CERTIFICATE-----Generated at Mon Jul 21 12:43:37 2025 by rpki-client